Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/irDURu_rhVwwJxiS5PMMBjoLB34.roa
File: irDURu_rhVwwJxiS5PMMBjoLB34.roa (raw, json)
Hash identifier: tFYk4UWiEaxIOCioiGiQEgmv90ywoPo5IUFX8q79ihQ=
Subject key identifier: 8A:B0:D4:46:EF:EB:85:5C:30:27:18:92:E4:F3:0C:06:3A:0B:07:7E
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/irDURu_rhVwwJxiS5PMMBjoLB34.roa
Signing time: Thu 15 Sep 2022 02:49:51 +0000
ROA not before: Thu 15 Sep 2022 02:49:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4780
IP address blocks: 211.78.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Sep 15 02:49:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8AB0D446EFEB855C30271892E4F30C063A0B077E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c0:8c:db:ca:62:bd:3c:a7:f9:3e:36:56:01:
85:9c:93:44:0c:fb:be:14:37:f0:c3:ea:7f:a9:23:
cd:a9:0c:38:d0:e0:e7:68:9e:45:92:46:4b:1a:96:
9b:25:08:b4:96:91:d7:d4:38:ac:14:a2:16:64:eb:
23:7f:d7:00:ff:d7:ad:22:2d:bf:c2:28:e1:0e:ab:
e2:34:bf:9a:11:df:9d:6e:92:56:45:d0:bd:c5:5b:
e3:cc:c9:09:01:4e:be:98:f2:44:ec:05:0d:18:3b:
b2:c2:17:2b:25:ed:34:85:b7:3b:1e:cc:21:fc:e7:
94:ee:55:3f:0d:ea:ef:ed:3a:83:d3:87:0b:5a:7e:
42:ff:e7:f5:2b:d1:cf:1f:d6:70:e8:28:6e:4c:75:
6a:57:41:aa:59:4a:4c:c4:1f:09:33:a5:60:3e:bb:
ca:d2:f4:22:0b:63:c2:3b:28:2e:7a:a7:1c:00:14:
88:9c:20:d4:70:eb:fd:81:a9:8b:ab:02:5d:63:a5:
01:4f:3e:cf:d5:d2:1a:13:ba:fc:4e:86:6c:41:cd:
40:b6:ff:04:fd:78:8f:ac:68:e6:2d:2c:27:99:a9:
a1:e1:08:31:bb:b4:af:fa:53:62:07:f9:66:b7:c8:
a8:a8:44:88:da:de:6b:bc:f0:b5:ed:79:7c:61:74:
af:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B0:D4:46:EF:EB:85:5C:30:27:18:92:E4:F3:0C:06:3A:0B:07:7E
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/irDURu_rhVwwJxiS5PMMBjoLB34.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.78.4.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:63:d4:16:e7:57:80:8b:d4:f7:e9:87:5e:76:0f:af:25:5e:
16:6c:4c:a8:d5:5a:8d:32:ba:ce:cb:30:c8:cb:d6:7b:cc:8a:
46:d8:82:d4:0c:b6:64:a8:bc:19:45:85:5e:1f:e5:1e:01:13:
d5:06:d6:19:be:20:53:6c:d9:9b:bf:1e:7d:0f:11:a2:51:99:
54:4f:d3:c9:1c:59:6c:79:20:2d:42:51:89:8a:f6:45:1b:c3:
79:f9:c0:f5:da:af:03:08:9e:42:50:c4:b2:28:64:02:5d:d6:
72:7c:80:99:d9:9d:8b:11:f8:c3:2a:22:23:53:d2:23:dc:39:
49:87:fb:12:45:d6:b3:a7:4b:e9:32:9c:b4:ed:15:8b:49:c0:
02:5d:f8:1b:56:40:75:a0:bc:9a:55:e2:ff:6e:26:7f:12:77:
83:b9:f3:2f:21:36:ec:a6:94:b9:9e:0f:78:d6:da:24:09:e2:
a3:4b:05:e5:25:7f:4c:70:ff:e1:d5:e8:1c:ab:66:19:70:49:
41:ea:9d:1f:da:2b:0b:50:f6:0b:24:5f:91:39:7e:e5:e8:27:
29:64:cb:19:4e:45:39:25:91:0f:89:0e:2e:74:dd:9c:e6:c9:
56:7a:b8:92:e8:f8:0e:91:1d:80:d1:08:6d:7e:8b:7a:c3:d9:
25:03:c7:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org